What is claimed is: 

1 . In a computing environment having a connection to a network, a computer program 
product for securely propagating security credentials using a trusted authenticating domain, the 
computer program product embodied on one or more computer-readable media and comprising: 

computen-readable program code means for establishing a secure connection between a 
client and a password synchronization agent (PSA); 

computer-readable program code means for transmitting an identifier of a user and an 
identifying secret if the user to the PSA; 

computer-readable program code means for validating the user with the trusted 
authenticating dom&n using the transmitted user identifier and identifying secret; and 

computer-readable program code means for propagating the identifying secret of the user 
to a master registry iftthe validation succeeds. 



2. The computer program product according to Claim 1, further comprising: 

computer-readable program code means for establishing a second secure connection 
between the PSA and the trusted authenticating domain; and 

)le program code means for using the second secure connection for the 



computer-readafr 
validating of the user. 



3 . The computer prog 
computer-readable 



ram product according to Claim 1, further comprising: 
program code means for establishing a third secure connection 



RSW9-2000-0074-US1 



-30- 



between theVPSA and the master registry; and 

computer-readable program code means for using the third secure connection for the 
propagating of ttie identifying secret to the master registry. 

4. The computer program product according to Claim 1, further comprising computer- 
readable program code means for propagating the identifying secret to one or more other target 
registries if the validation succeeds. 

5. The computer program product according to Claim 4, further comprising: 
computer-readable program code means for establishing additional secure connections 

between the PSA and each of the other target registries; and 

computer-readable program code means for using the additional secure connections for 
the propagating of the identifying secret to the other target registries. 



6. The computer progranh product according to Claim 1, further comprising: 

computer-readable program code means for obtaining an identification of the trusted 

authenticating domain from the user; and 

computer-readable pro *ram code means for verifying that the trusted authenticating 

domain is trusted by the master registry as a prerequisite to the propagating. 



7. The computer program ^roduct according to Claim 1, further comprising: 
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computer-readable program code means for obtaining an identification of the trusted 
authenticating domain from the master registry. 



8. The computer Vogram product according to Claim 6, wherein the master registry stores 
trust policy information,Wd wherein the computer-readable program code means for verifying 
that the trusted authenticating domain is trusted further comprises computer-readable program 
code means for checking whether the stored trust policy information for the user includes the 



identification obtained from 



the user. 



9. The computer program product according to Claim 6, wherein the master registry stores 
trust policy information, anc wherein the computer-readable program code means for verifying 
that the trusted authenticating domain is trusted further comprises computer-readable program 
code means for checking whether the stored trust policy information for a user group of which 
the user is a member includes the identification obtained from the user. 

10. The computer progra n product according to Claim 7, wherein the master registry stores 



trust policy information, and 



wherein the computer-readable program code means for obtaining 



the identification of the trusied authenticating domain from the master registry further comprises 
computer-readable progran/code means for obtaining the identification using the stored trust 



policy information for the 



iser. 
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1 1 . The comptater program product according to Claim 7, wherein the master registry stores 
trust policy information, and wherein the computer-readable program code means for obtaining 
the identification ofi the trusted authenticating domain from the master registry further comprises 
computer-readable program code means for obtaining the identification using the stored trust 
policy information for avuser group of which the user is a member. 

12. The computer program product according to Claim 4, wherein the master registry stores 
password synchronization policy information, and wherein the computer-readable program code 
means for propagating the identifying secret to the one or more other target registries further 
comprises computer-readable program code means for identifying the one or more other target 
registries using the stored password synchronization policy information for the user. 



13. The computer program product according to Claim 4, wherein the master registry stores 
password synchronization policM information, and wherein the computer-readable program code 
means for propagating the identifying secret to the one or more other target registries further 
comprises computer-readable program code means for identifying the one or more other target 
registries using the stored password synchronization policy information for a user group of which 
the user is a member. 



14. The computer program 
program code means for establishiij; 
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product according to Claim 1 , wherein the computer-readable 
g the secure connection further comprises computer-readable 
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program code m 



sans for authenticating the PSA to the client. 



15. The computer program product according to Claim 2, wherein the computer-readable 
program code means for establishing the second secure connection further comprises computer- 
readable program coue means for authenticating the trusted authenticating domain to the PSA. 

16. The computer program product according to Claim 3, wherein the computer-readable 
program code means foil establishing the third secure connection further comprises computer- 
readable program code means for authenticating the master registry to the PSA. 

1 7. The computer program product according to Claim 5, wherein the computer-readable 
program code means for establishing additional secure connections further comprises computer- 
readable program code means for authenticating the other target registries to the PSA. 



18. The computer program product according to Claim 1, wherein the computer-readable 
program code means for validating further comprises: 



computer-readable progr; 
identifying secret of the user, wh 



m code means for performing a security function on the 
srein the security function comprises one of (i) a one-way 



hashing algorithm or (ii) an encryption algorithm; 

computer-readable program code means for using the user identifier to locate a 
previously-stored identifying secre t of the user which was stored by the trusted authenticating 
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8 domain; \nd 

9 corhputer-readable program code means for comparing the located identifying secret to a 
10 result of performing the security function. 

1 1 9. The computer program product according to Claim 1 , wherein the computer-readable 

2 program code means for validating further comprises computer-readable program code means for 

3 invoking an authenticated LDAP bind or other native authentication mechanism of the trusted 

4 authenticating domdin, wherein the identifier of the user and the identifying secret of the user are 

5 passed to the trusted authenticating domain, thereby causing the trusted authenticating domain to 
6^ validate the passed identifier and identifying secret and return a result which reports a success or 
7^ failure of the validation. 

l"s_ 20. The computer prdgram product according to Claim 1 , wherein the PSA has administrative 

2^"j authority for performing operations at the master registry. 



1" 21. The computer prograhi 
2 authority for performing operations 



product according to Claim 4, wherein the PSA has administrative 
at the one or more other target registries. 



1 22. A system for securely propagating security credentials using a trusted authenticating 

2 domain, comprising: 

3 means for establishing A secure connection between a client and a password 
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synchronization agent (PSA); 



means for transmitting an identifier of a user and an identifying secret of the user to the 
PSA; \ 



means for validating the user with the trusted authenticating domain using the transmitted 
user identifier and\identifying secret; and 

means for propagating the identifying secret of the user to a master registry if the 
validation succeeds. \ 

23. The system according to Claim 22, further comprising: 

means for establishing a second secure connection between the PSA and the trusted 
authenticating domain; and 

means for using tire second secure connection for the validating of the user. 

24. The system according to Claim 22, further comprising: 

means for establishing a third secure connection between the PSA and the master registry; 
and I 

means for using the third secure connection for the propagating of the identifying secret 
to the master registry. 

25. The system according to Claim 22, further comprising means for propagating the 
identifying secret to one or more other target registries if the validation succeeds. 
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26. The system according to Claim 25, further comprising: 

means for establishing additional secure connections between the PSA and each of the 
other target registries; and 

means for uWg the additional secure connections for the propagating of the identifying 
secret to the other target registries. 

27. ' The system according to Claim 22, further comprising: 

means for obtaining an identification of the trusted authenticating domain from the user; 
and 1 

means for verifying that the trusted authenticating domain is trusted by the master registry 
as a prerequisite to the propagating. 

28. The system according to Claim 22, further comprising: 

means for obtaining aft identification of the trusted authenticating domain from the master 
registry. 1 

29. The system according to Claim 27, wherein the master registry stores trust policy 
information, and wherein the rrieans for verifying that the trusted authenticating domain is trusted 
further comprises means for chicking whether the stored trust policy information for the user 
includes the identification obtained from the user. 
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1 30. The system according to Claim 27, wherein the master registry stores trust policy 

2 information, and wherein the means for verifying that the trusted authenticating domain is trusted 

3 further comprisesVneans for checking whether the stored trust policy information for a user group 

4 of which the user isW member includes the identification obtained from the user. 

1 31. The system according to Claim 28, wherein the master registry stores trust policy 

2 information, and wherem the means for obtaining the identification of the trusted authenticating 

3 domain from the master rfegistry further comprises means for obtaining the identification using 
4jD the stored trust policy information for the user. 

1 m 32. The system according to Claim 28, wherein the master registry stores trust policy 

2^ information, and wherein the kieans for obtaining the identification of the trusted authenticating 

3 /J domain from the master registA further comprises means for obtaining the identification using 

4^ the stored trust policy information for a user group of which the user is a member. 

^ss. 1 

LJ I 

1 33. The system according to Claim 25, wherein the master registry stores password 

2 synchronization policy information, and wherein the means for propagating the identifying secret 

3 to the one or more other target registries further comprises means for identifying the one or more 

4 other target registries using the stordd password synchronization policy information for the user. 
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34. The system according to Claim 25, wherein the master registry stores password 
synchronization policy information, and wherein the means for propagating the identifying secret 
to the one or rriore other target registries further comprises means for identifying the one or more 
other target registries using the stored password synchronization policy information for a user 
group of which the user is a member. 

35. The system acco\ding to Claim 22, wherein the means for establishing the secure 
connection further comprises means for authenticating the PSA to the client. 

36. The system according to Claim 23, wherein the means for establishing the second secure 
connection further comprises means for authenticating the trusted authenticating domain to the 
PSA. 

37. The system according t<\ Claim 24, wherein the means for establishing the third secure 
connection further comprises m^ans for authenticating the master registry to the PSA. 



3 8 . The system according to 
connections further comprises mefcns 



39. The system according to C 



Cjlaim 26, wherein the means for establishing additional secure 
for authenticating the other target registries to the PSA. 



aim 22, wherein the means for validating further comprises: 



means for performing a security function on the identifying secret of the user, wherein the 
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security function comprises one of (i) a one-way hashing algorithm or (ii) an encryption 
algorithm; 

means for using the user identifier to locate a previously-stored identifying secret of the 
user which was stored by the trusted authenticating domain; and 

means for comparing the located identifying secret to a result of performing the security 
function. 

40. The system according to Claim 22, wherein the means for validating further comprises 
means for invoking an authenticated LDAP bind or other native authentication mechanism of the 
trusted authenticating domain, wherein the identifier of the user and the identifying secret of the 
user are passed to the trusted authenticating domain, thereby causing the trusted authenticating 
domain to validate the passe\i identifier and identifying secret and return a result which reports a 
success or failure of the validation. 



41 . The system according td Claim 22, wherein the PSA has administrative authority for 
performing operations at the master registry. 

42. The system according to Claim 25, wherein the PSA has administrative authority for 
performing operations at the onelor more other target registries. 
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43. A methodVfor securely propagating security credentials using a trusted authenticating 
domain, comprising steps of: 

establishing a secure connection between a client and a password synchronization agent 

(PSA); 

transmitting an identifier of a user and an identifying secret of the user to the PSA; 

validating the user with the trusted authenticating domain using the transmitted user 
identifier and identifying secret; and 

propagating the identifying secret of the user to a master registry if the validation 
succeeds. 
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